[23383] in bugtraq
Re: *ALERT* BID 3581: Wu-Ftpd File Globbing Heap Corruption Vulnerability
daemon@ATHENA.MIT.EDU (Jedi/Sector One)
Mon Dec 3 18:15:45 2001
Date: Mon, 3 Dec 2001 21:54:55 +0059
From: Jedi/Sector One <j@pureftpd.org>
To: bugtraq@securityfocus.com
Message-ID: <20011203215455.A31221@c9x.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <1007368345.15397.0.camel@prefect>; from mortenp@certus.dk on Mon, Dec 03, 2001 at 09:32:25AM +0100
On Mon, Dec 03, 2001 at 09:32:25AM +0100, Morten Poulsen wrote:
> > ftp> ls -al ~{
> > Segmentation fault (core dumped)
> No, it's a problem in your client. I can btw reproduce it with the ftp
> client from Linux NetKit 0.16 on LinuxPPC.
'ls -al <something here>' in a command-line ftp client means to save the
result of 'ls -al' in '<something here>' .
<something here> is expanded by your FTP client. The ftp server only sees
'ls -al'. So you are probably triggering the glibc bug locally.
If you want to send a pattern and ls options, quote the space :
ls -al\ ~{
Best regards,
-Frank.
--
Upgrade your FTP server to something simple and secure
http://www.pureftpd.org
